Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Karel (04-09-2018 19:21:16)
Running from C:\Users\Karel\Desktop
Windows 10 Pro Version 1803 17134.228 (X64) (2018-05-21 23:35:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2185844643-1941637182-3919478290-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2185844643-1941637182-3919478290-503 - Limited - Disabled)
Guest (S-1-5-21-2185844643-1941637182-3919478290-501 - Limited - Disabled)
Karel (S-1-5-21-2185844643-1941637182-3919478290-1001 - Administrator - Enabled) => C:\Users\Karel
WDAGUtilityAccount (S-1-5-21-2185844643-1941637182-3919478290-504 - Limited - Disabled)
winpostgr (S-1-5-21-2185844643-1941637182-3919478290-1004 - Limited - Enabled) => C:\Users\winpostgr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Endpoint Antivirus (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Endpoint Antivirus (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\uTorrent) (Version: 3.5.4.44520 - BitTorrent Inc.)
5KPlayer (HKLM-x32\...\5KPlayer) (Version: 5.2 - DearMob, Inc.)
7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
7-Zip 18.05 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 29.0.0.112 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
AudioBox.fm Desktop 1.1.7 (HKLM-x32\...\{9010E659-2395-415C-9F33-F853EBA483DB}_is1) (Version: 1.1.7 - iCoreTech, Inc.)
Backup and Sync from Google (HKLM\...\{AEFBDB5B-899F-4AE6-B789-BA56A652A476}) (Version: 3.42.9858.3671 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd.  (dg_ssudbus) USB  (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd.  (ssudmdm) Modem  (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd.  (WinUSB) AndroidUsbDeviceClass  (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Bonjour Browser (HKLM-x32\...\Bonjour Browser_is1) (Version:  - )
Bonjour Print Services (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CGen+ (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\dd222ae914837305) (Version: 0.6.0.10 - CGen+)
Cisco Network Assistant (HKLM-x32\...\{397FF711-8BD9-4388-ADFC-2A878B83F018}) (Version: 6.3(3) - Cisco Systems, Inc)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.23.50 - Conexant)
Corel DVD MovieFactory 7 (HKLM-x32\...\{50F68032-B5B7-4513-9116-C978DBD8F27A}) (Version: 7.0.0 - Corel Corporation) Hidden
Corel DVD MovieFactory Lenovo Edition (HKLM-x32\...\InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A}) (Version: 7.0.0 - Corel Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Degoo (HKLM-x32\...\{226DBEFA-23F2-4B26-8E6F-B58E9D28B1F4}) (Version: 1.0.2729 - Degoo Backup AB)
Direct DiscRecorder (HKLM-x32\...\{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}) (Version: 1.00.0000 - Corel Corporation) Hidden
Direct DiscRecorder (HKLM-x32\...\InstallShield_{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}) (Version: 1.00.0000 - Corel Corporation) Hidden
Discord (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Dropbox (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\Dropbox) (Version: 56.4.94 - Dropbox, Inc.)
dupeGuru 4.0.3 (HKLM\...\dupeGuru) (Version: 4.0.3 - Hardcoded Software)
ESET Endpoint Antivirus (HKLM\...\{3BC53507-500A-4BA0-8750-121C78057EED}) (Version: 6.6.2078.5 - ESET, spol. s r.o.)
Fingerprint Reader (HKLM\...\{7DD99174-299B-4450-A179-7F27F4C2D042}) (Version: 6.0.200.105 - AuthenTec, Inc.)
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
iBackupBot 5.5.3 (HKLM-x32\...\iBackupBot) (Version: 5.5.3 - VOW Software)
iCloud (HKLM\...\{82FCC407-A0E5-4B80-9241-5ABA78B61090}) (Version: 7.6.0.15 - Apple Inc.)
iExplorer 3.9.11.0 (HKLM-x32\...\{7FD8B0C1-CDDA-4B4D-A577-B2E3570EA3A3}_is1) (Version:  - Macroplant LLC)
iMazing 2.5.7.0 (HKLM\...\iMazing_is1) (Version: 2.5.7.0 - DigiDNA)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Integrated Camera Driver Installer Package Ver.1.0.0.30 (HKLM-x32\...\{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}) (Version: 1.0.0.30 - RICOH)
Integrated Camera Driver Installer Package Ver.1.2.1.18 (HKLM-x32\...\{A78800AF-1779-4AE8-8EBE-16E1BE727C71}) (Version: 1.2.1.18 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4653 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{3015F546-6C3E-4E6A-B564-BCDF88C0BA2A}) (Version: 2.1.1.0153 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.5.1000 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}) (Version: 1.0.0.34813 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{93F34C5C-ACAA-48F3-9B26-70359A117F12}) (Version: 3.0.12.0 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{D533A322-AB13-4D6E-80AB-19254C376262}) (Version: 18.1.1605.3087 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Chipset Device Software (HKLM-x32\...\{314d4c01-f54b-4125-a71f-1e2722c29050}) (Version: 10.1.1.40 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless WiFi Software (HKLM\...\{E97F409F-9E1C-42A0-B72D-765A78DF3696}) (Version: 15.01.0000.0830 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTools 4 (HKLM-x32\...\iTools4) (Version: 4.3.9.5 - ThinkSky Technology Co., Ltd)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
JSignPdf 1.4.4 (HKLM-x32\...\JSignPdf_is1) (Version: 1.4.4 - Josef Cacek)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 14.3.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.3.6 - KLCP)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 1.11 - )
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.85.03 - Lenovo) Hidden
Lenovo Patch Utility (HKLM-x32\...\{6E6E7725-C7BC-4C39-8B3F-14B67331A120}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo) Hidden
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)
Lenovo Service Bridge (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.4 - Lenovo)
Lenovo Settings – Power (HKLM-x32\...\{A6CFC34A-56EE-4AF5-8C49-995F59E6A160}) (Version: 2.00.000 - Lenovo) Hidden
Lenovo Solutions for Small Business (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 1.1.26.5057 - Intel(R) Corporation)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0070 - Lenovo)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.10325.20118 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ Compiler Package for Python 2.7 (HKLM-x32\...\{692514A8-5484-45FC-B0AE-BE2DF7A75891}) (Version: 9.0.1.30729 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Node.js (HKLM\...\{61BFCC1E-F296-4C81-826B-F00DC3590DAC}) (Version: 6.3.1 - Node.js Foundation)
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 359.37 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.37 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
OneKey  Recovery Pro (HKLM-x32\...\{FF162784-CFFE-4193-AE24-7FC476812ABE}) (Version: 4.50.0009.00 - Lenovo Group Limited)
Original War (HKLM-x32\...\original war) (Version:  - )
Ovládací panel NVIDIA 359.37 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 359.37 - NVIDIA Corporation) Hidden
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PhoneClean 3.4.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.4.0 - iMobie Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Praetor II (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\Praetor.exe) (Version:  - Praetor systems)
Python 2.7 pywin32-220 (HKLM-x32\...\pywin32-py2.7) (Version:  - )
Python 2.7.12 (HKLM-x32\...\{9DA28CE5-0AA5-429E-86D8-686ED898C665}) (Version: 2.7.12150 - Python Software Foundation)
Python Launcher (HKLM-x32\...\{0276F61C-30FC-46D4-BEFE-0EA959C4D691}) (Version: 3.5.2121.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 1.00.0802 - Lenovo)
RAR Password Cracker (HKLM-x32\...\RAR Password Cracker) (Version: 4.20 - dnSoft Research Group)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.29095 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Remote Mouse version 3.002 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 3.002 - Remote Mouse)
Ruby 2.3.1-p112-x64 (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\{96A4CEEE-5ACC-4FB2-AAB6-8152D5AB0C9E}_is1) (Version: 2.3.1-p112 - RubyInstaller Team)
SafeFinder (HKLM-x32\...\{F5AFB772-807C-4428-9C99-DAACDE8DF797}) (Version: 1.0.0.0 - Linkury) <==== ATTENTION
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{04703FE3-1A8B-4467-88E6-3D6A1A0FA65A}) (Version: 4.70 - Software602 a.s.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.115 - Synaptics Incorporated)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.14327 - TeamViewer)
Telegram Desktop version 1.2.15 (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.2.15 - Telegram Messenger LLP)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.6.1 - Unified Intents AB)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VLC Setup Helper (HKLM-x32\...\VLC Setup Helper_is1) (Version:  - Hobbyist Software)
vShare Helper (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\vShare Helper) (Version: 2.4.8.0 - vShare.com Co.,LTD)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WhatsApp (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\WhatsApp) (Version: 0.2.9229 - WhatsApp)
Windows Driver Package - Intel (iaStor) hdc  (11/29/2011 11.0.0.1032) (HKLM\...\64A62163FE43328D13305746CB8BCC93F2DF6545) (Version: 11/29/2011 11.0.0.1032 - Intel)
Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21) (HKLM\...\FD2ED46D31CE7DF190049D079E92DE03D347A634) (Version: 01/11/2012 1.65.05.21 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Zello 1.73.0.0 (HKLM-x32\...\Zello) (Version: 1.73.0.0 - Zello Inc)
Zoom (HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\ZoomUMX) (Version: 4.1 - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\WINDOWS\system32\CbFsMntNtf3.dll [2012-04-09] (EldoS Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\WINDOWS\system32\CbFsMntNtf3.dll [2012-04-09] (EldoS Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-13] (ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-06-26] (Apple Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-13] (ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2000-01-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-01-25] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-13] (ESET)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll -> No File
ContextMenuHandlers1_S-1-5-21-2185844643-1941637182-3919478290-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-2185844643-1941637182-3919478290-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-2185844643-1941637182-3919478290-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Karel\AppData\Roaming\Dropbox\bin\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {033A2E1C-A016-465B-8418-96688110CEC6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-08-18] (Microsoft Corporation)
Task: {063DBD28-2311-4821-9372-1895E150C322} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {09D7C0E5-B8A1-4EF5-A313-DDCE23F9B737} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {0A6BBE0E-BE8A-4A70-BD95-7444B2A0E41C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {0D647976-8F72-4785-9A3B-DEF3DCE9AEA0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0E922E55-42B8-497C-B5E8-0161A478980F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0EFABF9B-F836-44AC-86A8-80A4F397A4A9} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {13280129-65A6-499A-8DA5-273351560F49} - System32\Tasks\{71B16D64-FAA8-4A92-B0C9-55196ACF13F2} => C:\Windows\system32\pcalua.exe -a E:\setup\rsrc\Autorun.exe -d E:\
Task: {1345C819-0C27-40C9-B6ED-49804BAAF157} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {17D05B4B-DBA0-4BF8-9A7F-595DF7EDFE28} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {1827C4A4-EEAE-4BA6-A3BA-2072F3E9F79E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {1CDFE396-73CB-4F23-A5B2-8184B3746E38} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1E2A28CF-1460-428A-902E-5D054C8AB50A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {20F1B763-438B-4F75-89E8-CD7C86857700} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-18] (Microsoft Corporation)
Task: {259ABBDC-C3B0-4F5A-A5FC-11B073E0E9E1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\41d35dad-d78d-4b0b-bcdb-095c29c923c0 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {27743177-F94B-474A-B291-14B4B2D7A9D4} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {29AB5C86-EC61-47C0-A8DD-B62D2DD28624} - System32\Tasks\TVT\LaunchRnR => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe
Task: {2AD9B311-9087-4E98-BFA0-B731BB06575F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {2AEE6EFF-62BF-4097-AA7F-3096C0E1B79B} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [2018-05-16] (Lenovo Group Limited)
Task: {30483721-ED9E-4A31-A6E4-123DE1209BF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {311B487D-D0AD-45A5-8618-74EA8DC45421} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {353332CB-6698-4779-B0F2-D0C207D69564} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {3D0DA3F1-BB79-4603-8D1A-E729206A3D07} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-12-12] ()
Task: {41AD49CD-448C-4FD8-B980-983554BDC4D7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {42B3E928-9C5C-40A3-9171-55D092C28DC9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {42D70B6C-7439-4FF5-BD1E-CB5E3E64B9B3} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-karel.kutalek@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {43074D56-E4E1-4C32-956D-E95CB0C08144} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-20] (Adobe Systems Incorporated)
Task: {43402FF3-3D45-4C29-B492-B4EA0A5AC012} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {45A91DCE-78BA-4A9B-A024-B63252AE8CF7} - System32\Tasks\Lenovo\Lenovo Hardware Settings => "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {45FA4069-272C-4DFD-88DF-6A33A924AF01} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2185844643-1941637182-3919478290-1001UA1d236d3389fb72d => C:\Users\Karel\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2018-08-22] (Dropbox, Inc.)
Task: {48B2ECC0-8510-491A-AC58-F381C99DA919} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {496C0E59-CDC3-4FB2-8D2E-6524055B8D0C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {498CA1AD-73DF-4797-953D-2EB75B572FC4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\557a1c07-7c24-4b0a-8b90-8da5f4065906 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {4F31FE51-EE86-4A8D-BAF4-92FE2D4EF371} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {509BF3C5-821A-4F9E-BA42-AE1169A88E45} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-18] (Microsoft Corporation)
Task: {576D3DBB-5122-4DE7-BC80-D621B3156D81} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12] (NVIDIA Corporation)
Task: {59EF4978-D3C0-44AF-B613-C3C5A837465B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {643192C5-9A5A-4FFD-BD0F-80A23F31AF3E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {649CD9D6-E0E6-4DB0-BF63-BEDE6AF09338} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {64F9F5C2-9FC9-47CB-913E-0E0FD54320CF} - System32\Tasks\WinUrl => C:\ProgramData\{c66b8cb9-2944-5837-f0b2-1b9ecbf309d6}\hostdl.exe <==== ATTENTION
Task: {650C0825-2A44-4F40-BFD9-D2AA39C52523} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {652D77FB-D65D-4059-BA94-3403888E25ED} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7865a783-b404-432d-ab02-99abd0fa375c => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6684A7F2-67B9-4CFA-AC0F-84D6D723510A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {66B7D393-7FF2-46FD-A2E0-98F4FE800886} - \Lenovo\SimpleTap\Start SimpleTap for THINKPAD.Karel -> No File <==== ATTENTION
Task: {686F4804-5CE3-4E92-985D-51FE76DCDD22} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {69811DA9-5AAD-45C8-BE0D-EF464F2D9558} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2185844643-1941637182-3919478290-1001Core1d236d3385fe7e5 => C:\Users\Karel\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2018-08-22] (Dropbox, Inc.)
Task: {69F57534-F141-467F-B5B8-64D7DFF35114} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B3BA83E-DE66-4334-AE29-98E7172CD54F} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {6FEF6F30-B172-482F-A5E9-B4870A1C0903} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7AA0D34C-13E6-4CF6-97D1-15FE45896D09} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {7C0449CC-E397-452C-A4F0-159608E5D7EE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7E02DC9C-9B26-4601-B0A3-29FF1E527792} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [2009-02-10] ()
Task: {7E70EE0D-6C4F-4109-97F7-2DE1062D3BB1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {819E65DB-F454-4317-89C3-3385DC3D5874} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {87CFB5B8-8FBB-4564-A58E-4120C9C9C717} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8894B3EC-2A13-42F6-99CD-983F68A326CF} - System32\Tasks\{4B3846CE-9CB4-4C52-ADB7-E8972960189C} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.10.0.116&LastError=12002
Task: {8911791C-A60D-46DF-9A0F-18286B0E298E} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {899F87D2-F8A3-4A57-A1F4-014D5ECAD955} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\db35b6d8-c9f4-452e-8f43-c6383e9d71cb => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {8A54B794-4D4C-4FA7-9083-9037D5AD1DF5} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [2018-05-23] (Lenovo.)
Task: {8B1F9355-4FEE-44A7-B7F6-5B7024C20616} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_pepper.exe [2018-07-31] (Adobe Systems Incorporated)
Task: {96AC4C1B-D300-4FB5-9234-AC3E45A78642} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0788a045-7185-42e8-89f8-50be52fecbf8 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {984523D6-101C-44E0-B7BE-EB05D00C7F58} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {989E8979-C98C-45A4-969D-F206F977418B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {99B0D575-511E-44B1-9558-B59C3FAB4A1D} - System32\Tasks\{102A09C3-D8FE-4EF4-8C8A-416B1990E539} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.1.0.129.272/cs/abandoninstall?page=tsProgressBar
Task: {9F4311A5-43AE-40B1-92CE-5F28D39E31E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A2E33816-957A-4B99-BBEC-2147DC47D506} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2018-06-26] (Apple Inc.)
Task: {A4945886-CB31-4D79-97BC-18D94509FAB8} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {A58E9980-338D-4367-BAEC-6A091464982B} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [2018-08-18] (Microsoft Corporation)
Task: {A8AE7967-CD6A-4219-9556-2B6FA00EC0C9} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A9DFDEB3-40C9-4CCE-B195-D99A7F88E776} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {AC39C5C1-78E4-4FF2-9791-7E8138C93492} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {AD96F710-5D42-4DD3-9A3C-1EB268DA2DA0} - System32\Tasks\S-1-5-21-2185844643-1941637182-3919478290-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {B069E960-F5AA-4480-BFCB-FA8AF406428B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B1F88310-DA35-4335-AFEA-FFF1583EA97B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {B778220D-0A82-40F7-A9AD-095522DB66ED} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {C2F45824-70D4-40E8-8CC6-60A5FF3B55C6} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {C8F59606-F442-4757-B3C8-62E836790A98} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2185844643-1941637182-3919478290-1001 => C:\Users\Karel\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-08-22] (Lenovo Group Limited)
Task: {CC79A4B7-9F48-4A98-8577-3F3EA1D033F6} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {D2C764D4-BF33-4086-944C-297E81E9D05A} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [2018-05-29] ()
Task: {D2EEEE3E-AFB7-44B6-8ACA-FF941E6739A1} - System32\Tasks\{AF7B85A1-5228-4B1F-A4B9-30D484731607} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\iMobie\PhoneClean\PhoneClean.exe" -d "C:\Program Files (x86)\iMobie\PhoneClean"
Task: {D307D7F1-5EE3-460C-8FFE-1ADA722728EB} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {D4696539-8BD8-4082-93D7-DE8D77C99AE0} - System32\Tasks\TVT\UpdateRnR => C:\Program Files (x86)\Common Files\Lenovo\Scheduler\tvtsetsched.exe [2012-02-06] ()
Task: {D470F914-6C39-46C8-9E3A-129FC42A57D0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D4B17D0B-2401-4BAF-8743-FACB66B97C75} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D7072FC7-BF14-400D-88AB-3743CEA6F614} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-mocny8998@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {D9958A88-B085-4593-8787-3960CCC4A24A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {D9F20632-02D3-4515-BA56-26CF74652C5C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DD00FC0A-548A-44B4-98AB-250AE23E401E} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {DDFDA5A2-3A7C-46A5-A11D-707380657D5E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-31] (Adobe Systems Incorporated)
Task: {E3C17E48-3AB7-4481-826E-8E3E2EE89327} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {E4D3E716-43CA-4CEA-9814-7F62DD379188} - System32\Tasks\TVT\ChangePWD => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe
Task: {EF958082-847A-4325-810D-EADDDD1623A7} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-12-12] ()
Task: {F16BDF1C-2D00-44B2-B4AC-C2DFC64E24F0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F3110B0B-1D88-4937-9122-DD8BF64F6E72} - System32\Tasks\SafeZone scheduled Autoupdate 1458663110 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {F6D072E0-3EEB-4D69-BB42-F3325B7E5E57} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {F8B7ACF2-A925-4892-AB52-0EEF1A3AED4B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FB25104C-BF11-4B6A-A7E3-761142401FCD} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FB614E02-416B-4536-9A1B-59BEE4A2E693} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {FDAD481B-76AC-43FA-96A1-C1B2D5755150} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c9e8cff7-96d7-45bc-ae21-75c32722f3da => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {FDDC6688-0B17-4944-BDC2-C12B9B3C158F} - \PMTask -> No File <==== ATTENTION
Task: {FEF13DF6-32D8-4CA6-9E10-E23007F05942} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-08-18] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2185844643-1941637182-3919478290-1001Core1d236d3385fe7e5.job => C:\Users\Karel\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2185844643-1941637182-3919478290-1001UA1d236d3389fb72d.job => C:\Users\Karel\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Karel\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 2.3.1-p112-x64\Start Command Prompt with Ruby.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /E:ON /K C:\Ruby23-x64\bin\setrbvars.bat
ShortcutWithArgument: C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual C++ Compiler Package for Python 2.7\Visual C++ 2008 32-bit Command Prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k ""C:\Users\Karel\AppData\Local\Programs\Common\Microsoft\Visual C++ for Python\9.0\vcvarsall.bat" x86"
ShortcutWithArgument: C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual C++ Compiler Package for Python 2.7\Visual C++ 2008 64-bit Command Prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k ""C:\Users\Karel\AppData\Local\Programs\Common\Microsoft\Visual C++ for Python\9.0\vcvarsall.bat" amd64"
ShortcutWithArgument: C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual C++ Compiler Package for Python 2.7\Visual C++ 2008 64-bit Cross Tools Command Prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k ""C:\Users\Karel\AppData\Local\Programs\Common\Microsoft\Visual C++ for Python\9.0\vcvarsall.bat" x86_amd64"

==================== Loaded Modules (Whitelisted) ==============

2018-07-07 01:23 - 2018-06-15 19:30 - 001308672 _____ () c:\windows\system32\FaceProcessor.dll
2018-07-07 01:23 - 2018-06-15 19:55 - 000542888 _____ () c:\windows\system32\FaceProcessorCore.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001348664 _____ () c:\windows\system32\FaceTrackerInternal.dll
2018-08-19 16:25 - 2018-08-22 20:33 - 000041880 _____ () C:\Users\Karel\AppData\Roaming\Tenorshare\Service\FirmwareService.exe
2012-08-29 21:31 - 2012-03-07 00:49 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2014-06-01 22:15 - 2014-06-01 22:15 - 000189248 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-01 22:15 - 2014-06-01 22:15 - 000075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2018-03-16 15:19 - 2018-03-16 15:19 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-06-23 06:56 - 2018-06-23 06:56 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-04-03 11:26 - 2016-06-25 08:52 - 000018432 _____ () C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
2013-08-07 04:03 - 2013-08-07 04:03 - 001130792 _____ () C:\Program Files\Lenovo Fingerprint Reader\DataManager.dll
2013-08-07 04:04 - 2013-08-07 04:04 - 000087848 _____ () C:\Program Files\Lenovo Fingerprint Reader\ssutil.dll
2018-08-11 13:15 - 2018-06-29 08:03 - 000199976 _____ () C:\Program Files (x86)\ThinkPad\Utilities\CZ\PWMRT64V.DLL
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-14 22:19 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-08-11 05:41 - 2018-08-11 05:41 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-11 05:41 - 2018-08-11 05:41 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-11 05:41 - 2018-08-11 05:41 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 15:09 - 2017-09-26 15:09 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-11 05:41 - 2018-08-11 05:41 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2013-08-07 04:04 - 2013-08-07 04:04 - 004624168 _____ () C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
2018-02-08 02:29 - 2017-12-12 11:25 - 000023920 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2018-05-20 21:28 - 2010-10-26 12:40 - 000049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2015-07-20 17:34 - 2015-07-20 17:34 - 000012288 _____ () C:\Program Files (x86)\No-IP\ducservice.exe
2018-05-30 11:03 - 2018-05-30 11:03 - 046281248 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-07-19 10:34 - 2018-07-19 10:37 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-19 10:34 - 2018-07-19 10:37 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-19 10:34 - 2018-07-19 10:37 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-19 10:34 - 2018-07-19 10:37 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-19 10:34 - 2018-07-19 10:37 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-08-10 02:37 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-10 02:37 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-09-04 18:51 - 2018-09-04 18:51 - 000113152 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_ctypes.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000080896 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\bz2.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 001585152 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_hashlib.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000128512 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32api.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000137728 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\pywintypes27.dll
2018-09-04 18:51 - 2018-09-04 18:51 - 000548864 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\pythoncom27.dll
2018-09-04 18:51 - 2018-09-04 18:51 - 000689664 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\unicodedata.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000438784 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32com.shell.shell.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 001489408 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._core_.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 001007104 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._gdi_.pyd
2018-09-04 18:52 - 2018-09-04 18:52 - 001039872 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._windows_.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 001325056 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._controls_.pyd
2018-09-04 18:52 - 2018-09-04 18:52 - 000916992 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._misc_.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 001084416 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\pysqlite2._sqlite.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000149504 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32file.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000136192 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32security.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000007680 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\hashobjs_ext.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000020992 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\thumbnails_ext.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000118784 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\usb_ext.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000047616 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_socket.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 002224640 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_ssl.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000014848 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\common.time34.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000023040 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32event.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000034304 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows.conditional.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000020480 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows.winwrap.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000110080 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows.volumes.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000223232 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32gui.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000173568 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_elementtree.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000169472 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\pyexpat.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000048128 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32inet.pyd
2018-09-04 18:52 - 2018-09-04 18:52 - 000103424 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\wx._html2.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000046080 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_psutil_windows.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000633272 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows._cacheinvalidation.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000011776 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32crypt.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000301568 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\PIL._imaging.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000032256 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_multiprocessing.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 005458944 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\cello.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000026112 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\_yappi.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000044032 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32process.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000027648 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32pipe.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000010752 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\select.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000029696 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32pdh.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000038400 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows.connectivity.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000073216 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\windows.device_monitor.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000020480 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32profile.pyd
2018-09-04 18:51 - 2018-09-04 18:51 - 000026624 _____ () C:\Users\Karel\AppData\Local\Temp\_MEI109962\win32ts.pyd
2013-08-07 04:04 - 2013-08-07 04:04 - 000900904 _____ () C:\Program Files\Lenovo Fingerprint Reader\x86\DataManager.dll
2018-05-28 22:25 - 2013-05-14 06:15 - 001199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-07-20 17:34 - 2015-07-20 17:34 - 000073728 _____ () C:\Program Files (x86)\No-IP\ducapi.dll
2018-06-23 06:56 - 2018-06-23 06:56 - 001042232 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2018-03-16 15:20 - 2018-03-16 15:20 - 000076088 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2018-06-23 06:56 - 2018-06-23 06:56 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2018-08-06 15:43 - 2018-06-08 11:16 - 000194504 _____ () C:\Program Files (x86)\DearMob\5KPlayer\libupnp.dll
2018-08-06 15:43 - 2017-06-20 06:17 - 000119616 _____ () C:\Program Files (x86)\DearMob\5KPlayer\zlib1.dll
2018-08-06 15:43 - 2017-06-20 06:16 - 000132432 _____ () C:\Program Files (x86)\DearMob\5KPlayer\libgcc_s_dw2-1.dll
2018-08-06 15:43 - 2017-06-20 06:16 - 001552720 _____ () C:\Program Files (x86)\DearMob\5KPlayer\libstdc++-6.dll
2018-08-06 15:43 - 2018-04-02 08:18 - 008122312 _____ () C:\Program Files (x86)\DearMob\5KPlayer\airplay.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 002281984 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000891392 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000016896 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000339456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000446976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000019456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2012-08-29 21:46 - 2012-07-12 14:59 - 000062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2018-08-28 21:49 - 2018-08-28 13:53 - 001111880 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2018-08-28 21:49 - 2018-08-28 13:53 - 002247496 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll
2018-07-15 21:26 - 2018-08-28 13:58 - 000023888 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\tornado.speedups.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000025456 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000142824 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\_cffi_backend.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 001958760 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000025960 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:53 - 000118232 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\pywintypes35.dll
2018-07-15 21:26 - 2018-08-28 13:53 - 000109024 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32api.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000027616 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32event.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000049128 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32process.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000074584 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000083784 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\fastpath.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:53 - 000418776 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\pythoncom35.dll
2018-08-28 21:49 - 2018-08-28 13:53 - 000023520 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\mmapfile.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000131552 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32file.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000119272 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32security.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000401240 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32com.shell.shell.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000034664 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000026600 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32clipboard.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000182752 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32gui.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000027616 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32pipe.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000028640 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32job.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:55 - 000025944 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000053736 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32service.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000065504 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32evtlog.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000059744 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000028520 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000068968 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000027488 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-08-01 21:16 - 2018-08-28 13:59 - 000033632 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winreindex.compiled._winreindex.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 003822416 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000090560 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\sip.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 001779024 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 001929552 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000032736 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32ts.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000156504 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000519504 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000052056 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000044888 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000132944 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000218456 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000205656 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000061408 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32print.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000051552 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000027624 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\win32profile.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000027496 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000025960 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:58 - 000025448 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000024032 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000031600 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:53 - 000494048 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winxpgui.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000102736 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000029040 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000029024 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:53 - 000036312 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\librsync.dll
2018-08-28 21:49 - 2018-08-28 13:56 - 000036712 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:53 - 000293392 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2018-07-15 21:26 - 2018-08-28 13:58 - 000025960 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000441672 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2018-07-15 21:26 - 2018-08-28 13:58 - 000035680 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:56 - 000025920 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\libEGL.DLL
2018-08-28 21:49 - 2018-08-28 13:56 - 001592128 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2018-07-15 21:26 - 2018-08-28 13:58 - 000095592 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
2018-07-15 21:26 - 2018-08-28 13:59 - 000029544 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000531280 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000354128 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.cp35-win32.pyd
2018-08-28 21:49 - 2018-08-28 13:57 - 000037200 _____ () C:\Users\Karel\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.cp35-win32.pyd

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\localhost -> localhost

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-08-22 19:33 - 008389131 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 mydownloaddomain.com
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
127.0.0.1 beautifllink.xyz

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WSAppHelper.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinUrl.url"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "MFNetworkScanUtility"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "IntelSBA"
HKLM\...\StartupApproved\Run32: => "Lenovo Registration"
HKLM\...\StartupApproved\Run32: => "IMSS"
HKLM\...\StartupApproved\Run32: => "Fastboot"
HKLM\...\StartupApproved\Run32: => "RotateImage"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "WSHelperSetup.exe"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "Sidebar"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "NoIPDUCv4"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "Vectir"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "Blogger"
HKU\S-1-5-21-2185844643-1941637182-3919478290-1001\...\StartupApproved\Run: => "WSHelperSetup.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6D701869-019C-4957-BC91-C954366B57D2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [UDP Query User{490B1D6C-D2E8-4526-9A02-B43E87D07DE7}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [TCP Query User{EACA2B08-DFF9-404B-AF26-50126D117230}C:\program files (x86)\logmein ignition\lmiignition.exe] => (Allow) C:\program files (x86)\logmein ignition\lmiignition.exe
FirewallRules: [UDP Query User{347E8729-413A-4EFC-B815-66B8B6ACCA0F}C:\program files\windowsapps\xbmcfoundation.kodi_17.9.601.0_x86__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_17.9.601.0_x86__4n2hpmxwrvr6p\kodi.exe
FirewallRules: [TCP Query User{68038C10-FB39-41BF-B3FD-C8450C3D09D9}C:\program files\windowsapps\xbmcfoundation.kodi_17.9.601.0_x86__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_17.9.601.0_x86__4n2hpmxwrvr6p\kodi.exe
FirewallRules: [UDP Query User{7979BBB6-EB4F-4F1B-8EDB-24040A89C407}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{AB8FC663-D09A-433B-96BC-B49BA648EABC}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{CE59E178-0892-45FB-A408-FEE3D0EF4FDC}C:\program files\itunes\itunes.exe] => (Allow) C:\program files\itunes\itunes.exe
FirewallRules: [TCP Query User{D68DAA76-50ED-4927-A7A3-B445AF3DD9EE}C:\program files\itunes\itunes.exe] => (Allow) C:\program files\itunes\itunes.exe
FirewallRules: [UDP Query User{472FDC76-F242-4806-9AC3-9408E245B880}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [TCP Query User{5409EB51-51C4-46B5-80D1-342E13A5FA41}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [UDP Query User{B1DC3810-F8FC-4FBF-9735-51985FC6E102}C:\program files\itunes\itunes.exe] => (Allow) C:\program files\itunes\itunes.exe
FirewallRules: [UDP Query User{F5EAEA96-9B8E-4D6B-974C-49CA3FE89633}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [TCP Query User{B8F9E12E-A7E1-4DCE-A535-394AB3B244AB}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [{23D854C8-347A-4B32-A19D-F8F790E29622}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{85CD9C25-1296-433A-B09C-B55F753BAFE4}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [TCP Query User{66E5B554-46F8-4A1E-BAF4-DF614B4A849C}H:\profit\profit.exe] => (Allow) H:\profit\profit.exe
FirewallRules: [UDP Query User{F9B8A5A6-47F1-4481-A08A-CC920F5656CF}H:\profit\profit.exe] => (Allow) H:\profit\profit.exe
FirewallRules: [{690C15C1-5F8C-4EC5-ACB8-903DF544D405}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{38C3740E-E7D4-4E09-BA65-029A7D4B2F92}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2CEF4DD8-D4F5-4439-ACF4-48B4FC3A850A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BA8E2BDB-BAB1-4CFA-96E9-6BF7E13933BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{179FC03A-0F6F-4FA1-897A-147FDB03433C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3748670E-C7FE-44E1-B6C6-2413B0F098AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D9F963F2-E07C-46FB-A2F7-C8C6FC3C927C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2E28B945-50D7-4353-8F15-5A453A14FEDE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1197F851-823D-4D81-9B28-FCE058AA420E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4D7C7067-6667-441D-8B9F-59FF5F0275EF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8022B6A2-D44E-44D0-AE27-E86D37510492}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{5FB47452-09B9-4DEB-AA25-761CEE00BB26}C:\users\karel\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\karel\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{D359CCD1-76C6-46B9-8BA0-A8C6FA4FB6AE}C:\users\karel\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\karel\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{430130B9-F85C-4497-AD8F-A45E61EADE44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{0A3ED80B-BC27-415C-A906-D34FAD7E529E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6912DFB9-4326-4E48-8F75-8BF41DC7D10D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{10BA75D9-E061-4D54-95A7-AC237BA6CB80}C:\program files (x86)\mbpowertools\ireceiver.exe] => (Allow) C:\program files (x86)\mbpowertools\ireceiver.exe
FirewallRules: [UDP Query User{E151DCB3-1E2C-4192-A432-52FD159DC249}C:\program files (x86)\mbpowertools\ireceiver.exe] => (Allow) C:\program files (x86)\mbpowertools\ireceiver.exe
FirewallRules: [TCP Query User{B8C0903A-1417-47DD-B94C-B8A6AA00F7D8}C:\program files (x86)\vectir\vectir.exe] => (Allow) C:\program files (x86)\vectir\vectir.exe
FirewallRules: [UDP Query User{7F154B26-985F-488C-B827-D957253A691E}C:\program files (x86)\vectir\vectir.exe] => (Allow) C:\program files (x86)\vectir\vectir.exe
FirewallRules: [{A1E75EAB-3A1D-4295-A9EF-349D4D1C537C}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [{B70EE200-22FF-4960-88BE-2F74E44DD08D}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [TCP Query User{EED11FA9-3189-4ECF-AA2A-5F9A6C290FA6}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe
FirewallRules: [UDP Query User{2DCEE070-436B-4633-90E3-B54AF700A266}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe
FirewallRules: [TCP Query User{BB8DB9D1-41E5-4950-B74B-87BC9BE4330A}C:\users\karel\appdata\local\programs\screencloud-player\screencloud player.exe] => (Allow) C:\users\karel\appdata\local\programs\screencloud-player\screencloud player.exe
FirewallRules: [UDP Query User{0F58D305-D952-4B1B-939C-12D92855DF9A}C:\users\karel\appdata\local\programs\screencloud-player\screencloud player.exe] => (Allow) C:\users\karel\appdata\local\programs\screencloud-player\screencloud player.exe
FirewallRules: [TCP Query User{337E4F4A-4AC7-437A-AF83-8246D28FE47B}C:\program files (x86)\audiobox.fm desktop\app\audiobox desktop.exe] => (Allow) C:\program files (x86)\audiobox.fm desktop\app\audiobox desktop.exe
FirewallRules: [UDP Query User{1FE4EFA5-774B-49F9-82CC-9DAFADC9159B}C:\program files (x86)\audiobox.fm desktop\app\audiobox desktop.exe] => (Allow) C:\program files (x86)\audiobox.fm desktop\app\audiobox desktop.exe
FirewallRules: [{E734A630-857C-4B13-A070-7CA7F43193A3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{57C5AD8D-2B1F-4010-B0DA-6FEEFDB09E7E}C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{622A2273-8054-4127-8D2C-10D0471C7B0A}C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{5F297646-E2C7-4736-8B54-09DFC7204555}C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{9FFAB026-7554-4377-B2AD-8ABE4D74A407}C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\karel\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{392B53B6-24B9-46F5-8135-E682192D5515}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe
FirewallRules: [UDP Query User{B7B93445-0CEE-4E60-A6B9-EDF48DB8596B}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe
FirewallRules: [{B7ACB0D1-C21D-4FF6-B018-9DB6333F8757}] => (Allow) C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CFFF85DA-DFEF-4A37-9CBD-4084C8BF9036}] => (Allow) C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{84486EEE-E45C-4487-9A8B-90691EFACC1A}C:\program files (x86)\getflv\youtube zilla\youtube zilla.exe] => (Allow) C:\program files (x86)\getflv\youtube zilla\youtube zilla.exe
FirewallRules: [UDP Query User{6C45516B-85B3-4DD3-9907-92C81AB1869C}C:\program files (x86)\getflv\youtube zilla\youtube zilla.exe] => (Allow) C:\program files (x86)\getflv\youtube zilla\youtube zilla.exe
FirewallRules: [TCP Query User{79BE47C1-C3C1-48EA-8B7F-F8447E063E10}C:\users\karel\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\karel\appdata\roaming\utorrent web\utweb.exe
FirewallRules: [UDP Query User{4EB0C674-FB45-4705-A886-61ED20C651D3}C:\users\karel\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\karel\appdata\roaming\utorrent web\utweb.exe
FirewallRules: [TCP Query User{A0CF343B-14AD-43EF-A367-5CD5ABF92880}C:\program files (x86)\bel\realterm\realterm.exe] => (Allow) C:\program files (x86)\bel\realterm\realterm.exe
FirewallRules: [UDP Query User{AD8AEA3A-B188-4619-96BE-40E1C4654B42}C:\program files (x86)\bel\realterm\realterm.exe] => (Allow) C:\program files (x86)\bel\realterm\realterm.exe
FirewallRules: [TCP Query User{A8251825-FCAA-46F5-98BF-E27C74355B03}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe
FirewallRules: [UDP Query User{346BE21F-C3BC-48DF-9221-A710D6183AED}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe
FirewallRules: [TCP Query User{E5265498-2277-44C6-9A98-AAAA0CF18E7A}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe
FirewallRules: [UDP Query User{E3DE13EC-2E9C-45C8-BFF3-9620681B4A3B}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe
FirewallRules: [TCP Query User{5D8A2E4B-F3C7-48E7-923B-C4F6BE3A56F0}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Allow) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [UDP Query User{BF072C96-8A22-4940-8B8D-F75053ACFB71}C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe] => (Allow) C:\program files (x86)\wondershare\video converter ultimate\mediaserver.exe
FirewallRules: [TCP Query User{E11E3143-C768-4981-A509-55C6A658678F}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Allow) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [UDP Query User{4352C422-01C2-4B45-83D5-21D234EDBD37}C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe] => (Allow) C:\program files (x86)\wondershare\video converter ultimate\medialibserver.exe
FirewallRules: [TCP Query User{1CC6A65F-5AB5-4F82-A47C-A37E6EE5A32F}C:\program files (x86)\bel\realterm\realterm.exe] => (Allow) C:\program files (x86)\bel\realterm\realterm.exe
FirewallRules: [UDP Query User{F5D5E08C-1569-474F-B858-647B1B8A1784}C:\program files (x86)\bel\realterm\realterm.exe] => (Allow) C:\program files (x86)\bel\realterm\realterm.exe
FirewallRules: [{3D804B86-198A-4CF3-94D2-B6064B775940}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{54D6D2EA-C44A-42F7-83B9-9F8585472392}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4B7AF5F1-DAF4-42E5-A55C-DA590C3CB3F5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AAA5AF4D-DAA7-4D66-BD90-25F3231C7B9C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9C2B71F4-AA02-4BAA-8922-2AE32F20C3A1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2C9544BF-0E45-4CA4-B210-A933BBCDFE72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B344FBB3-1FC9-4558-97DF-9C16CBFCE01C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E38C7FA5-066D-43F4-8088-C9B3B56EB9B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{0A7F4FF9-518F-4575-8434-9C46C358931E}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe
FirewallRules: [UDP Query User{D07D422A-88C2-4066-94D7-9D31DB830F4F}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe
FirewallRules: [{7D560942-109E-4A2D-BB07-9F6CB5473F36}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{CF153CB0-2CA8-4EA9-961B-16154FAD1D7C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{DBF06C00-AC91-4FE4-83CD-A573D46D391F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{2F036A5A-2F73-4292-A4DD-5CBFE73DE457}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{24BB8CE3-EBE8-453A-9801-882922618753}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0A6C60AA-159E-47E0-9F23-AF436E603C0B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{91520106-2278-4731-9534-8EE6AE181032}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{5832B5AB-209F-4569-AC4F-C6D17E75D961}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{A0B70D27-06FC-45CB-92C3-E72B37F6425B}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\VLC Setup Helper.exe
FirewallRules: [{DCC8CECE-4D79-41B2-9A31-6D9785159820}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\mDNSResponder.exe
FirewallRules: [{8AC8FC8B-98F4-407E-B834-EC7394C89677}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe
FirewallRules: [{BDB3C322-2665-48D3-8858-78A2F29F56D1}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe
FirewallRules: [{ECEBCA6A-4005-4402-83F8-D24500DD0253}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\mDNSResponder.exe
FirewallRules: [TCP Query User{A1FDFE90-A0F9-40D0-BB58-05430A0856E4}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe
FirewallRules: [UDP Query User{ED3944F8-1470-465C-8915-F50580B52650}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe
FirewallRules: [TCP Query User{82A710C0-0EF9-472D-9290-638C0A8B2E76}C:\program files (x86)\hobbyist software\bonjour browser\mdnsresponder.exe] => (Allow) C:\program files (x86)\hobbyist software\bonjour browser\mdnsresponder.exe
FirewallRules: [UDP Query User{C8E8C502-988C-44D6-9F72-F1253640F92A}C:\program files (x86)\hobbyist software\bonjour browser\mdnsresponder.exe] => (Allow) C:\program files (x86)\hobbyist software\bonjour browser\mdnsresponder.exe
FirewallRules: [TCP Query User{4F2D49F7-36DC-40D8-B7C3-F4878B02509F}C:\users\karel\appdata\local\vmrhub\app-0.1.0\vmrhub.exe] => (Allow) C:\users\karel\appdata\local\vmrhub\app-0.1.0\vmrhub.exe
FirewallRules: [UDP Query User{810503C9-FB8E-42B2-A7B1-3A59667105DC}C:\users\karel\appdata\local\vmrhub\app-0.1.0\vmrhub.exe] => (Allow) C:\users\karel\appdata\local\vmrhub\app-0.1.0\vmrhub.exe
FirewallRules: [TCP Query User{45962B71-D3CF-4ADD-8C25-FA5D841A0C0F}C:\users\karel\appdata\local\degoo\degoo.exe] => (Allow) C:\users\karel\appdata\local\degoo\degoo.exe
FirewallRules: [UDP Query User{A7874DCD-5295-4995-86B7-D24DEF5CDDEE}C:\users\karel\appdata\local\degoo\degoo.exe] => (Allow) C:\users\karel\appdata\local\degoo\degoo.exe
FirewallRules: [{FDCC012C-BD6E-47AF-A403-EC7423A06049}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{00F23957-A1A9-41D4-8930-DD50F1A2D184}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{29AB34FE-C9DC-418A-B007-E35D75EE1C5E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B8614E1A-054B-4A46-9A9A-CFD922EFBF4F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

==================== Restore Points =========================

24-08-2018 20:05:30 Naplánovaný kontrolní bod
02-09-2018 23:16:09 Naplánovaný kontrolní bod
04-09-2018 09:00:54 Removed iTunes

==================== Faulty Device Manager Devices =============

Name: Synaptics Pointing Device
Description: Synaptics Pointing Device
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: i8042prt
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Klávesnice Microsoft Basic (106/109)
Description: Klávesnice Microsoft Basic (106/109)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kbdhid
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/04/2018 07:24:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:23:55 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:22:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:21:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:20:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:19:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:18:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.

Error: (09/04/2018 07:17:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service 5KPlayer-THINKPAD._airplay._tcp.local. port 8080.


System errors:
=============
Error: (09/04/2018 07:01:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou: 
%%16389

Error: (09/04/2018 06:57:10 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 06:57:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 06:56:38 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Apple Mobile Device Service bylo dosaženo časového limitu (60000 ms).

Error: (09/04/2018 06:56:21 PM) (Source: DCOM) (EventID: 10016) (User: THINKPAD)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli THINKPAD\Karel (SID: S-1-5-21-2185844643-1941637182-3919478290-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 06:55:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AppHostSvc bylo dosaženo časového limitu (60000 ms).

Error: (09/04/2018 06:54:42 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Centrum zabezpečení přestala během spouštění reagovat.

Error: (09/04/2018 06:54:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby 602XML Updater bylo dosaženo časového limitu (60000 ms).


Windows Defender:
===================================
Date: 2018-05-30 03:52:13.585
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\Microsoft Toolkit.exe;containerfile:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\MTKV264.zip;file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\Microsoft Toolkit.exe;file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources];file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\MTKV264.zip->Microsoft Toolkit.exe;file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\MTKV264.zip->Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources];file:_C:\Windows\AutoKMS\AutoKMS.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Uživatel
Uživatel: THINKPAD\Karel
Název procesu: Unknown
Verze podpisu: AV: 1.269.272.0, AS: 1.269.272.0, NIS: 1.269.272.0
Verze modulu: AM: 1.1.14901.4, NIS: 1.1.14901.4

Date: 2018-05-30 03:33:27.762
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DCDCFE90-E86A-4D34-8205-6AAA2EC92A97}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Úplné prohledávání
Uživatel: THINKPAD\Karel

Date: 2018-05-30 03:33:27.759
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Mailpassview&threatid=2147571412&enterprise=0
Název: HackTool:Win32/Mailpassview
ID: 2147571412
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Karel\Downloads\Install\mailpv\mailpv.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Uživatel
Uživatel: THINKPAD\Karel
Název procesu: Unknown
Verze podpisu: AV: 1.269.272.0, AS: 1.269.272.0, NIS: 1.269.272.0
Verze modulu: AM: 1.1.14901.4, NIS: 1.1.14901.4

Date: 2018-05-30 03:33:27.729
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\Microsoft Toolkit.exe;containerfile:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\MTKV264.zip;file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources];file:_C:\Users\Karel\Downloads\Install\Microsoft Toolkit 2.6.4 Official Torrent\MTKV264.zip->Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources];file:_C:\Windows\AutoKMS\AutoKMS.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Uživatel
Uživatel: THINKPAD\Karel
Název procesu: Unknown
Verze podpisu: AV: 1.269.272.0, AS: 1.269.272.0, NIS: 1.269.272.0
Verze modulu: AM: 1.1.14901.4, NIS: 1.1.14901.4

Date: 2018-06-01 16:29:13.799
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Monitorování chování
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software. 
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2018-05-25 19:29:45.175
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor. 
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2018-05-22 19:10:15.919
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Monitorování chování
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software. 
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2018-05-22 13:42:34.224
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1769.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x800704cf
Popis chyby :Umístění v síti není dosažitelné. Informace týkající se řešení problémů se sítěmi naleznete v Nápovědě systému Windows. 

CodeIntegrity:
===================================

Date: 2018-09-04 19:24:10.768
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:24:10.766
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:24:10.749
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:24:10.747
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:24:10.586
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:24:10.584
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-04 19:22:14.279
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 19:22:14.278
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 67%
Total physical RAM: 7785.92 MB
Available physical RAM: 2546.23 MB
Total Virtual: 15721.92 MB
Available Virtual: 9641.46 MB

==================== Drives ================================

Drive c: (Windows10_OS) (Fixed) (Total:445.92 GB) (Free:13.81 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:17.58 GB) (Free:4.28 GB) NTFS

\\?\Volume{6114a644-f20f-11e1-b58c-806e6f6e6963}\ (SYSTEM_DRV) (Fixed) (Total:1.46 GB) (Free:0.32 GB) NTFS
\\?\Volume{dd9763b5-0000-0000-0000-80d86f000000}\ () (Fixed) (Total:0.8 GB) (Free:0.32 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: DD9763B5)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=819 MB) - (Type=27)
Partition 4: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================